Set up SPID
This page describes the process of setting up a SPID implementation through the Signicat eID and Wallet Hub.
For general information about integrating with Signicat eIDs, see the eID and Wallet Hub documentation.
Initial preparations
If you do not have an account already, then you need to sign up to the Signicat Dashboard for free and complete the initial preparations. To do this:
- Sign up to the Signicat Dashboard and register your profile.
- Ensure that you have created an organisation.
- Create an account. To do this:
- Go to Signicat Dashboard > Organisation, then select + Add account.
- Enter an account name, choose the type of account that you want to create, then select Create.
- Create a domain. To do this:
- Go to Signicat Dashboard > Settings > Domain management, then select + Add domain.
- To create a standard domain, enter a domain name. Then, select Add domain.
- To create a custom domain, follow the instructions in the Custom domains documentation.
We recommend that you create a sandbox account to test our services before going live. Sandbox and production accounts must be set up separately.
Add SPID
You can always test SPID in a sandbox account, but you need to complete some preparations to go live in production.
To go live in production, you need to configure access to SPID with an onboarding manager. To do this, follow the steps in Sign agreements and metadata or contact us.
When you are ready to start the setup, you need to add SPID to the list of supported eIDs in the Signicat Dashboard. To do this:
- Go to Dashboard > Products > eID and Wallet Hub > eIDs.
- Select + Add new in the top right.
- Choose Sistema Pubblico di Identità Digitale from the list of available eIDs.
- In the SPID configuration page, enter the following about your organisation:
- VAT number: The VAT tax number. In sandbox, you may enter any value.
- Fiscal code (Codice Fiscale): Optional. Applies only if your organisation is (also) registered in Italy.
- Select Add to add SPID to your active eIDs.
You have just configured SPID in the Signicat Dashboard. SPID should now be available in your list of active eIDs.
After you activate SPID, you need to set up a connection with an authentication protocol, such as OIDC, SAML 2.0 or the Signicat Authentication API. Find out how to do this in the Integrate with an authentication protocol section.
Try out SPID with test users
To try out SPID in a sandbox environment, learn more in the Test SPID page.
You can test SPID authentications before you integrate with a protocol.
Integrate with an authentication protocol
You need to set up an authentication protocol to integrate with SPID through Signicat.
OIDC and SAML 2.0 are official identity protocols, while the Authentication REST API is a solution developed and maintained by Signicat. We recommend using OIDC, since SAML 2.0 is much more complex to implement on your side and usually requires a federation agent already in place.
For more information about the different protocol types, see the Signicat eID and Wallet Hub documentation.
Integration guide with OIDC
Integration guide with SAML 2.0
To get started with SAML 2.0, refer to the eID and Wallet Hub - SAML 2.0 page.
Integration guide with the Authentication REST API
To get started with the Authentication REST API, refer to the following guides:
Troubleshooting
If you add a new domain in the Signicat Dashboard and want to connect your SPID integration to that domain, the SPID metadata with AgID needs to be updated so that SPID can work correctly on the new domain.
If you update your domain in the Signicat Dashboard, please ask our support team to update your SPID metadata with AgID by creating a support ticket in the Signicat Dashboard.